{ config, lib, pkgs, ... }: let nextdnsConfig = "abd6e5"; hostname = config.networking.hostName; in { networking = { networkmanager = { enable = true; dns = lib.mkForce "none"; }; resolvconf = { useLocalResolver = true; }; }; services.kresd = { enable = true; extraConfig = '' cache.size = 100*MB cache.min_ttl(3 * 3600) policy.add(policy.all(policy.TLS_FORWARD({ {'45.90.28.0', hostname='${hostname}-${nextdnsConfig}.dns1.nextdns.io'}, {'2a07:a8c0::', hostname='${hostname}-${nextdnsConfig}.dns1.nextdns.io'}, {'45.90.30.0', hostname='${hostname}-${nextdnsConfig}.dns2.nextdns.io'}, {'2a07:a8c1::', hostname='${hostname}-${nextdnsConfig}.dns2.nextdns.io'} }))) ''; }; environment.systemPackages = with pkgs; [ networkmanagerapplet networkmanager_dmenu ]; }